Gg » Historique » Version 3
Gilles Grandgérard, 03/09/2015 16:42
| 1 | 3 | Gilles Grandgérard | h1. NTPD |
|---|---|---|---|
| 2 | 1 | Gilles Grandgérard | |
| 3 | 1 | Gilles Grandgérard | <pre> |
| 4 | 1 | Gilles Grandgérard | # Begin /etc/ntp.conf |
| 5 | 1 | Gilles Grandgérard | |
| 6 | 1 | Gilles Grandgérard | # Associate to the public NTP pool servers |
| 7 | 1 | Gilles Grandgérard | server 0.pool.ntp.org |
| 8 | 1 | Gilles Grandgérard | server 1.pool.ntp.org |
| 9 | 1 | Gilles Grandgérard | server 2.pool.ntp.org |
| 10 | 1 | Gilles Grandgérard | |
| 11 | 1 | Gilles Grandgérard | # Location of drift file |
| 12 | 1 | Gilles Grandgérard | driftfile /var/lib/ntp/ntpd.drift |
| 13 | 1 | Gilles Grandgérard | |
| 14 | 1 | Gilles Grandgérard | # Location of the log file |
| 15 | 1 | Gilles Grandgérard | logfile /var/log/ntpd |
| 16 | 1 | Gilles Grandgérard | |
| 17 | 1 | Gilles Grandgérard | # Location of the update directory |
| 18 | 1 | Gilles Grandgérard | ntpsigndsocket /var/lib/samba/ntp_signd/ |
| 19 | 1 | Gilles Grandgérard | |
| 20 | 1 | Gilles Grandgérard | # Restrictions |
| 21 | 1 | Gilles Grandgérard | restrict default kod limited nomodify notrap nopeer mssntp |
| 22 | 1 | Gilles Grandgérard | restrict 127.0.0.1 |
| 23 | 1 | Gilles Grandgérard | restrict ::1 |
| 24 | 1 | Gilles Grandgérard | restrict 0.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery |
| 25 | 1 | Gilles Grandgérard | restrict 1.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery |
| 26 | 1 | Gilles Grandgérard | restrict 2.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery |
| 27 | 1 | Gilles Grandgérard | |
| 28 | 1 | Gilles Grandgérard | # End /etc/ntp.conf |
| 29 | 1 | Gilles Grandgérard | </pre> |
| 30 | 1 | Gilles Grandgérard | |
| 31 | 1 | Gilles Grandgérard | Create the state directory and set permissions: |
| 32 | 1 | Gilles Grandgérard | |
| 33 | 2 | Gilles Grandgérard | <pre> |
| 34 | 1 | Gilles Grandgérard | # install -d /var/lib/samba/ntp_signd |
| 35 | 1 | Gilles Grandgérard | # chown root:ntp /var/lib/samba/ntp_signd |
| 36 | 1 | Gilles Grandgérard | # chmod 0750 /var/lib/samba/ntp_signd |
| 37 | 1 | Gilles Grandgérard | </pre> |
| 38 | 1 | Gilles Grandgérard | |
| 39 | 1 | Gilles Grandgérard | service ntp restart |
| 40 | 3 | Gilles Grandgérard | |
| 41 | 3 | Gilles Grandgérard | h1. provisionning |
| 42 | 3 | Gilles Grandgérard | |
| 43 | 3 | Gilles Grandgérard | samba-tool domain provision --use-rfc2307 --use-ntvfs --use-xattrs=yes |
| 44 | 3 | Gilles Grandgérard | |
| 45 | 3 | Gilles Grandgérard | h1. KRB5 |
| 46 | 3 | Gilles Grandgérard | |
| 47 | 3 | Gilles Grandgérard | # mv /etc/krb5.conf{,.default} |
| 48 | 3 | Gilles Grandgérard | # cp /var/lib/samba/private/krb5.conf /etc |